Scantist currently has more than 60 employees across Singapore, Mumbai, Beijing, Shanghai and Xi'an. Scantist harnessed the research achievements of the Cyber Security Lab at NTU to develop a series of product chains and DevSecOps tools, including SCA, DAST, SAST, SmartFuzzer, and OSSPERT.
Scantist's story
Scantist was founded in 2016 as a spin-off of the world-leading Cyber Security Lab at Nanyang Technological University (NTU), Singapore.
Scantist is the recipient of 2018 NRF National Cybersecurity Research Grant as well as the 2020 CSA Innovation Award and won at Huawei’s Spark Ignite competition program launched in 2021.
Why HUAWEI CLOUD?
Challenges
Scantist focuses on security scanning products and is exploring security products for the open source libraries of the developer community. The challenges they are facing:
1) Complex system setup and permission control: The existing system is running on a bare metal server in the customer's office. Permission controls were not sufficiently refined. As a result, it was hard to trace malicious file uploaders during intrusions, and it was time- and labor-consuming to clean up all affected files after intrusions.
2) Slow upgrade package delivery: Scantist needs to provide upgrade packages every month. It takes more than ten hours to upload and download upgrade packages, as they have clients in China, and the uploading process is challenged by the Great Firewall (GFW).
3) The limited impact of Scantist in the developer community is hindering its business growth. As a result, the company needs to increase its impact through the Huawei Cloud Spark Program.
Solutions
Customer Benefits
Huawei Cloud provides the service and technology resources of the Asia Pacific Spark Program, branding campaigns, promotion on Huawei AppGallery, and technical support for cost reduction. The ecosystem partner solutions offer the following benefits:
Related Blogs
Find out how we’ve helped organisations like you
An Empirical Study of Malicious Code In PyPI Ecosystem
How can we better identify and neutralize malicious packages in the PyPI ecosystem to safeguard our open-source software?
The RoguePuppet Lesson: Why Software Supply Chain Security Is Non-Negotiable
A critical software supply chain vulnerability was recently averted when security researcher Adnan Khan uncovered a severe flaw in the GitHub repository Puppet Forge in early July 2024. Dubbed RoguePuppet, this vulnerability would have allowed any GitHub user to push official modules to the repository of Puppet, a widely-used open-source configuration management tool.
Driving Security: The Critical Role of Binary Analysis in Automotive Cybersecurity
In the rapidly evolving automotive industry, cybersecurity has become a paramount concern. With the increasing connectivity and complexity of modern vehicles, manufacturers face unprecedented challenges in ensuring the safety and security of their products. The introduction of regulations like UN R155 and R156 has further emphasized the need for robust cybersecurity measures throughout the vehicle lifecycle.